Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: how to find which program that update a specific file
Operating Systems AIX how to find which program that update a specific file Post 302709759 by bakunin on Wednesday 3rd of October 2012 02:26:10 PM
Old 10-03-2012
gts is right - auditing a system can be tricky. Still, if you have only one (or very few) file(s) to monitor you can probably set up a loop with "lsof" and a log file, which might "catch" the offending process in the act. In any way, finding out which process modified a file in the past is impossible. You can only wait for the process to modify it again and then "catch" it while it does so.

I hope this helps.

bakunin
 

9 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

Update specific lines in a file

Hi all, I want to add a special character ^M to a line, if the line starts with ORDE. All the other lines should remain unchanged. Is there sed or other UNIX function who can do this. Thanx in advance Auke Quist (3 Replies)
Discussion started by: aukequist
3 Replies

2. Shell Programming and Scripting

Update a specific line in a file while reading sequentially

All, I know this is a very naive question but I could not find a way to get this working! I have a file with values like input.file Value1 Value2 server1/mylogin,mypasswd Value3 Value4 And in my code, I am reading the file line by line and processing it. #! /bin/ksh... (6 Replies)
Discussion started by: bharath.gct
6 Replies

3. Shell Programming and Scripting

Update specific field in a line of text file

I have a text file like this: subject1:LecturerA:10 subject2:LecturerA:40 if I was given string in column 1 and 2 (which are subject 1 and LecturerA) , i need to update 3rd field of that line containing that given string , which is, number 10 need to be updated to 100 ,for example. The... (6 Replies)
Discussion started by: bmtoan
6 Replies

4. Shell Programming and Scripting

How to find a file with a specific pattern for current sysdate & upon find email the details?

I need assistance with following requirement, I am new to Unix. I want to do the following task but stuck with file creation date(sysdate) Following is the requirement I need to create a script that will read the abc/xyz/klm folder and look for *.err files for that day’s date and then send an... (4 Replies)
Discussion started by: PreetArul
4 Replies

5. Shell Programming and Scripting

Find and extract values from one file and update other

Gents, Kindly can you help me to update a file extracting the data from other file. I have: file1 The key in this file is substr($0,4,21), and I need to update the columns 6 and 7 using the information for file2. S 21133.00 21535.00 1 0 919088.8 1843754.5 ... (2 Replies)
Discussion started by: jiam912
2 Replies

6. Shell Programming and Scripting

Find and update line in xml file

Hi, I have a xml file that I need to modify 1 line to change some value from 2 to 10 (or any number). Sample input: <!-- some text here> . . . <message:test name="ryan"> <message:sample-channel charset="UTF-8" max-value="2" wait="20"> ... (5 Replies)
Discussion started by: brichigo
5 Replies

7. UNIX for Advanced & Expert Users

Last touched file by a specific program ?

i have a directory where all .csv files are available. i have 3 perl programs(ex: a.pl,b.pl,c.pl) which continuously runs every 1 minute to scan all files in that directory. now i have 2 questions 1) how can i write an app lock on that particular folder to make sure only one program will scan... (4 Replies)
Discussion started by: sbjv
4 Replies

8. Shell Programming and Scripting

awk to update specific value in file with match and add +1 to specific digit

I am trying to use awk to match the NM_ in file with $1 of id which is tab-delimited. The NM_ will always be in the line of file that starts with > and be after the second _. When there is a match between each NM_ and id, then the value of $2 in id is substituted or used to update the NM_. Each NM_... (3 Replies)
Discussion started by: cmccabe
3 Replies

9. Shell Programming and Scripting

Update a specific field in file with Variable value based on other Key Word

I have an input file with A=xyz B=pqr I would want the value in Second Field (xyz or pqr) updated with a value present in Shell Variable based on the value passed in the first field. (A or B ) while read line do NEW_VALUE = `some functionality done on $line` If $line=First Field-... (1 Reply)
Discussion started by: infernalhell
1 Replies

LEARN ABOUT HPUX

audwrite

audwrite(2)							System Calls Manual						       audwrite(2)

NAME

       audwrite() - write an audit record for a self-auditing process

SYNOPSIS

DESCRIPTION

       is  called  by  self-auditing processes, which are capable of turning off the regular auditing using the system call (see audswitch(2)) and
       doing higher-level auditing on their own.  is restricted to users with the privilege.

       checks to see if the auditing system is on and the calling process and the event specified are being audited.  If these conditions are met,
       writes  the  audit  record  pointed to by audrec_p into the audit trail.  The record consists of an audit record body and a header with the
       following fields:

	      /* Date/time (tv_sec of timeval) */
	      /* Process ID */
	      /* Success/failure */
	      /* Event being audited */
	      /* Length of variant part */

       The body contains additional information about the high-level audit event.  The header fields and are specified	by  the  calling  process.
       fills  in  and fields with the correct values.  this is done to reduce the risk of forgery.  Beginning with 11i version 3 release, converts
       the record into a different format before writing it into the current audit trail.

   Security Restrictions
       Some or all of the actions associated with this system call require the privilege.  Processes owned by the superuser have  this	privilege.
       Processes  owned  by  other users may have this privilege, depending on system configuration.  See privileges(5) for more information about
       privileged access on systems that support fine-grained privileges.

RETURN VALUE

       If the write is successful, a value of is returned.  Otherwise, a value of is returned and is set to indicate the reason for the failure.

ERRORS

       fails if one of the following is true:

	      The caller does not possess the
			     privilege.

	      The event number in the audit record is invalid.

WARNINGS

       If causes a file space overflow, the calling process might be suspended until the file space is cleaned up.  However, a returned call  with
       the return value of indicates that the audit record has been successfully written.

AUTHOR

       was developed by HP.

SEE ALSO

       audswitch(2), audit(4), privileges(5).

																       audwrite(2)
All times are GMT -4. The time now is 07:43 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy